Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS00Y3BnLTN2Z3ctNDg3N80s1Q
Prototype pollution in Plist before 3.0.5 can cause denial of service
Ecosystems: npm
Packages: plist
Source: GitHub Advisory Database
Blast Radius: 55.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1mbXZtLXg4bXYtNDdtas0s0Q
Improper CSP in Image Optimization API for Next.js versions between 10.0.0 and 12.1.0
Ecosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 32.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oMmZqLTc3d2gtZmg1d80s0A
Cross-site Scripting in livehelperchat
Ecosystems: packagist
Packages: remdex/livehelperchat
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: about 2 years ago
High
GSA_kwCzR0hTQS1qNTd3LTNjMzktZ3BwNc0svQ
Improper Privilege Management in Snipe-IT
Ecosystems: packagist
Packages: snipe/snipe-it
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nY3Y4LWdoNHItMjV4Ns0szg
Authorization Bypass Through User-Controlled Key in urijs
Ecosystems: npm
Packages: urijs
Source: GitHub Advisory Database
Blast Radius: 34.3
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS12OXA5LTUzNXctNDI4Nc0shg
Prototype Pollution in litespeed.js and appwrite/server-ce
Ecosystems: packagist, npm
Packages: appwrite/server-ce, litespeed.js
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1mOGZ2LWY3ODYtOTkzM80skg
Magento improper input validation vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1wN3c5LThteHctcDNnN80shw
Improper Certificate Validation in Hutool
Ecosystems: maven
Packages: cn.hutool:hutool-http
Source: GitHub Advisory Database
Blast Radius: 26.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS12aDJyLXg5N2MtMnZwcs0slg
SQL Injection in Jeecg-boot
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-base-core, org.jeecgframework.boot:jeecg-boot-base
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1mOXBnLWc5eHctcjVnMs0siw
SQL Injection in Jeecg-boot
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-base-core, org.jeecgframework.boot:jeecg-boot-base
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12ZzI3LWhyM3YtM2Nxds0scg
open redirect in pollbot
Ecosystems: pypi
Packages: pollbot
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS03cDc5LTZ4MnYtNWg4OM0scQ
Server crash if running Python 3.10 w/ Sanic 20.12
Ecosystems: pypi
Packages: sanic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oMjg5LXg1d2MteGN2OM0scA
Improper Validation of Certificate with Host Mismatch in mellium.im/xmpp/websocket
Ecosystems: go
Packages: mellium.im/xmpp
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1xYzg0LWdxZjQtOTkyNs0sbw
crossbeam-utils Race Condition vulnerability
Ecosystems: cargo
Packages: crossbeam-utils
Source: GitHub Advisory Database
Blast Radius: 38.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04OHhxLXc4Y3EteGZnN80sbg
Invalid drop of partially-initialized instances in the pooling instance allocator for modules with defined `externref` globals
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 17.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS1ocmh4LTZoMzQtajVoY80sbQ
Skip the router TLS configuration when the host header is an FQDN
Ecosystems: go
Packages: github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: about 2 years ago
High
GSA_kwCzR0hTQS1jZzNxLWo1NGYtNXA3cM0sbA
Uncontrolled Resource Consumption in promhttp
Ecosystems: go
Packages: github.com/prometheus/client_golang
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02NzNqLXFtNWYteHB2OM0saw
pgjdbc Arbitrary File Write Vulnerability
Ecosystems: maven
Packages: org.postgresql:postgresql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS0zM3dmLTRjcm0tMjMyMs0sag
Improper Access Control in librenms
Ecosystems: packagist
Packages: librenms/librenms
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wcGZtLXJqNnAtMzhxNs0sYw
Improper Authorization in librenms
Ecosystems: packagist
Packages: librenms/librenms
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yNTRxLXJxbXctdng0Nc0sYQ
Exposure of Sensitive Information to an Unauthorized Actor in librenms
Ecosystems: packagist
Packages: librenms/librenms
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1najI2LWc1cWYtanJoN80sYA
Cross-site Scripting in librenms
Ecosystems: packagist
Packages: librenms/librenms
Source: GitHub Advisory Database
Blast Radius: 1.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1ydzk4LTU4NDYtcHFoeM0sWA
Open redirect in microweber
Ecosystems: packagist
Packages: microweber/microweber
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12cHE3LW00cW0tcDJncM0sVw
Microweber vulnerable to Improper Validation of Specified Quantity in Input
Ecosystems: packagist
Packages: microweber/microweber
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02am02LWNtY3AtZnFqcc0sVA
Nomad Spread Job Stanza May Trigger Panic in Servers
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 15.1
Published: about 2 years ago
High
GSA_kwCzR0hTQS00bTdwLTU1am0tM3Z3ds0sTg
Improper Neutralization of Special Elements used in an OS Command in Jenkins Pipeline: Groovy Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wajg0LXFqbTMtNzdtZ80sTA
Jenkins Pipeline: Multibranch Plugin vulnerable to OS Command Injection
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-multibranch
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1nOWZ4LTZqNWMtZ3Jtd80sSw
Improper Neutralization of Special Elements used in an OS Command in Jenkins Pipeline: Shared Groovy Libraries Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xMjM0LXg4ODctOXJ4aM0sSg
Improper Link Resolution Before File Access in Jenkins Pipeline: Shared Groovy Libraries Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02NDczLWdxcmotNHA2Nc0sSQ
Improper Link Resolution Before File Access in Jenkins Pipeline: Groovy Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ybTl3LTl4aDItd3hjM80sSA
Link Following in Jenkins Pipeline Multibranch Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-multibranch
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS01aGZ2LW1nNXgtbXYzMs0sRw
Improper Limitation of a Pathname to a Restricted Directory in Jenkins Pipeline: Shared Groovy Libraries Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xdjZxLXg5dnItdzdqM80sRQ
Jenkins Pipeline: Groovy Plugin has Insufficiently Protected Credentials
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS03dzJ3LWZ3cGYtOW00aM0sRg
Jenkins Pipeline: Deprecated Groovy Libraries Plugin Protection Mechanism Failure
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS03cmN3LWZ3ZmgtMmgyZ80sQw
Jenkins Pipeline: Deprecated Groovy Libraries Plugin Protection Mechanism Failure
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wZndwLXE5ODQtdzd3aM0sRA
Jenkins Pipeline: Deprecated Groovy Libraries Plugin Protection Mechanism Failure
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xcXd4LWhjcDYtMjV2cs0sQA
Stored XSS vulnerability in Jenkins Generic Webhook Trigger Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:generic-webhook-trigger
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nODRmLWNtYzgtNjgyY80sQQ
Password parameter default values exposed by Jenkins Pipeline: Build Step Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:pipeline-build-step
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1mbTZxLTk3Z3ctYzR3aM0sPg
Agent-to-controller security bypass in Jenkins HashiCorp Vault Plugin
Ecosystems: maven
Packages: com.datapipe.jenkins.plugins:hashicorp-vault-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS01bThmLXYzZ3ctaDk0d80sPw
Jenkins Support Core Plugin stores sensitive data in plain text
Ecosystems: maven
Packages: org.jenkins-ci.plugins:support-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yM2g1LThwaDYtN3JmY80sPQ
Path traversal vulnerability in Jenkins Fortify Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:fortify
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS02cThyLTVwbTYtdjJxOM0sPA
Stored Cross-site Scripting vulnerability in Jenkins Custom Checkbox Parameter Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:custom-checkbox-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS01M2M0LWNtaGYtZ3A3d80sOg
Stored Cross-site Scripting vulnerability in Jenkins Agent Server Parameter Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:agent-server-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zNzJmLWpjNDctN2dyNc0sOw
Missing permission check in Jenkins Conjur Secrets Plugin allows enumerating credentials IDs
Ecosystems: maven
Packages: org.conjur.jenkins:conjur-credentials
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1maGZoLTZjamctNTdyZ80sQg
Jenkins Snow Commander Plugin 2.0 vulnerable to Cross-Site Request Forgery
Ecosystems: maven
Packages: io.jenkins.plugins:embotics-vcommander
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ycGhxLWdoZjgtNjU4Ns0sOQ
Jenkins Snow Commander Plugin prior to 2.0 vulnerable to Missing Authorization
Ecosystems: maven
Packages: io.jenkins.plugins:embotics-vcommander
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1nNXdoLWZ3NG0tMnYyOM0sOA
CSRF vulnerability in Jenkins autonomiq plugin
Ecosystems: maven
Packages: io.jenkins.plugins:autonomiq
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02anY3LTI4bXYtcXA5Y80sNw
Missing permission check in Jenkins autonomiq Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:autonomiq
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS03ZzdnLTgyZnAtaHB4eM0sNQ
CSRF vulnerability in Jenkins SCP publisher Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:scp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tdnE4LWhneGgtNHYyZ80sNg
Open redirect vulnerability in Jenkins GitLab Authentication Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:gitlab-oauth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yNTg3LXc5M2ctNjNtMs0sNA
Agent-to-controller security bypass in Jenkins HashiCorp Vault Plugin allows reading arbitrary files
Ecosystems: maven
Packages: com.datapipe.jenkins.plugins:hashicorp-vault-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS01cGNmLXZ4bTMtZnJwaM0sMw
CSRF vulnerability in Jenkins Checkmarx Plugin allow capturing credentials
Ecosystems: maven
Packages: com.checkmarx.jenkins:checkmarx
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS12ajNqLThtNngtbWpxNs0sMg
Missing permission check in Jenkins SCP publisher Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:scp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS13d2Y2LXgycnYtdnhxaM0sMQ
Missing permission checks in Jenkins Checkmarx Plugin allow capturing credentials
Ecosystems: maven
Packages: com.checkmarx.jenkins:checkmarx
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nYzdxLTd2ZzMtaDhnZs0sMA
Stored Cross-site Scripting vulnerability in Jenkins Promoted Builds (Simple) Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:promoted-builds-simple
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tdjVjLTcyNGYtM2ZxN80sLw
Stored Cross-site Scripting vulnerability in Jenkins Team Views Plugin
Ecosystems: maven
Packages: com.sonymobile.jenkins.plugins.teamviews:team-views
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02NHE5LWYzOGgtOW13eM0sLg
Protection Mechanism Failure in Jenkins Doktor Plugin
Ecosystems: maven
Packages: by.dev.madhead.doktor:doktor
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS12eDZmLTZycDYtZjJweM0sLQ
Cross-Site Request Forgery in Jenkins dbCharts Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:dbCharts
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1tNXdwLXAzZ2otN3E1Z80sLA
Missing Authorization in Jenkins dbCharts Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:dbCharts
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS14OTJ2LXh2M3gtOXYyOc0sKw
CSRF vulnerability in Jenkins Chef Sinatra Plugin allow XXE
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sinatra-chef-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mcTU2LWM3cmotajNqOc0sKg
Missing permission checks in Jenkins Chef Sinatra Plugin allow XXE
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sinatra-chef-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS0zOHc4LWgyMjItd3JwcM0sKQ
Improper Restriction of XML External Entity Reference in Jenkins Chef Sinatra
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sinatra-chef-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS12d3g0LWZycHItdzI3as0sKA
Improper Synchronization in Jenkins Convertigo Mobile Platform Plugin
Ecosystems: maven
Packages: com.convertigo.jenkins.plugins:convertigo-mobile-platform
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04cDhxLXd2eHgtanE5NM0sJw
Missing permission check in Jenkins SWAMP Plugin allows capturing credentials
Ecosystems: maven
Packages: org.continuousassurance.swamp.jenkins:swamp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ycGo2LTVocWMtdzV4Oc0sJg
CSRF vulnerability in Jenkins SWAMP Plugin allows capturing credentials
Ecosystems: maven
Packages: org.continuousassurance.swamp.jenkins:swamp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3OTQtY2Y2Zy1jOG1n
Man-in-the-Middle (MitM)
Ecosystems: go
Packages: github.com/docker/docker
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3N3gtMzJwbS1wMjh4
Link Following in Kata Runtime
Ecosystems: go
Packages: github.com/kata-containers/runtime
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmNmYtanEyNS04Z3E5
Gitea Remote Code Execution (RCE)
Ecosystems: go
Packages: code.gitea.io/gitea
Source: GitHub Advisory Database
Blast Radius: 15.5
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0N3gtNm1xcS00dzky
Gitea Improper Input Validation
Ecosystems: go
Packages: github.com/go-gitea/gitea
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5ZnEtdmp2aC03Nzlw
Improper Input Validation in vault-ssh-helper
Ecosystems: go
Packages: github.com/hashicorp/vault-ssh-helper
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3Y3ItNmdyOC03cnI5
Use After Free in HashiCorp Nomad
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 21.1
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhwbXItcHJyMi1jcWM0
Gitea Remote Code Execution
Ecosystems: go
Packages: github.com/go-gitea/gitea
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRmcXgtNzRydi02Mzh3
Pivotal Concourse SQL Injection Vulnerability
Ecosystems: go
Packages: github.com/concourse/concourse
Source: GitHub Advisory Database
Blast Radius: 10.1
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc5bXAtOGczaC0zYzVj
flynn/noise has improper nonce handling yielding potential state DoS
Ecosystems: go
Packages: github.com/flynn/noise
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtOWctNjQ3Zy01cHh3
Infinite loop in Yubico yubihsm-connector
Ecosystems: go
Packages: github.com/Yubico/yubihsm-connector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ4NTctN2Y0cS1mcGM3
Arbitrary redirects under /new endpoint
Ecosystems: go
Packages: github.com/prometheus/prometheus
Source: GitHub Advisory Database
Blast Radius: 22.8
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwMzItdm1tNi0zdmY1
Directory Traversal in Kubernetes
Ecosystems: go
Packages: k8s.io/kubernetes, github.com/kubernetes/kubernetes
Source: GitHub Advisory Database
Blast Radius: 28.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5Nzgtdmcyai1jYzlx
Improper Privilege Management and Execution with Unnecessary Privileges in Kata Containers
Ecosystems: go
Packages: github.com/kata-containers/runtime, github.com/kata-containers/agent
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV3bWctajg0dy00amo0
Arbitrary File Write via Archive Extraction in mholt/archiver
Ecosystems: go
Packages: github.com/mholt/archiver
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJnamctNjZjeC01eDlt
Grafana Authentication Bypass
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 16.6
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEycXItM2MycC05MjM1
Denial of Service (DoS) in HashiCorp Consul
Ecosystems: go
Packages: github.com/hashicorp/consul
Source: GitHub Advisory Database
Blast Radius: 18.4
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmdnItNXJxZi0zd3do
Information Exposure in Docker Engine
Ecosystems: go
Packages: github.com/moby/moby
Source: GitHub Advisory Database
Blast Radius: 27.0
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00angtNjUyNi12dmht
Denial of service in github.com/nats-io/nats-server/server
Ecosystems: go
Packages: github.com/nats-io/nats-server/v2, github.com/nats-io/nats-server
Source: GitHub Advisory Database
Blast Radius: 33.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM0angtd3g2OS05eDh2
Symlink Attack in kubectl cp
Ecosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI1NzUtcGdobS02cXF4
Kubernetes Unsafe Cacheing
Ecosystems: go
Packages: k8s.io/client-go
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFobTQtanh2Ny1qOXBx
Allocation of Resources Without Limits or Throttling and Uncontrolled Memory Allocation in Kubernetes
Ecosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 18.5
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnNWYtZjVwbS1tanJn
Istio may not check inbound TCP connections against istio-policy
Ecosystems: go
Packages: istio.io/istio
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc2MjItcjYzNi1xZnFo
SQL Injection in Couchbase Sync Gateway
Ecosystems: go
Packages: github.com/couchbase/sync_gateway
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgyaHgtdzJyNS1jMndx
Kubernetes API Server DoS Via API Requests
Ecosystems: go
Packages: k8s.io/apiserver
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdjOXctd3ZxMi1mZm05
Server Side Request Forgery in Grafana
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkzcDUtOGZxdy13angz
Authentication bypass by capture-replay in github.com/cosmos/ethermint
Ecosystems: go
Packages: github.com/cosmos/ethermint
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk2ODktcng0di1jcWdj
Pivotal Concourse Open Redirect in Login Flow
Ecosystems: go
Packages: github.com/concourse/concourse
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY1ZmotNzI2NS1qeGhq
Gitea Exposes Private Email Addresses
Ecosystems: go
Packages: github.com/go-gitea/gitea
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmaDItN2pnNS02NTNw
Denial of Service in docker2aci
Ecosystems: go
Packages: github.com/appc/docker2aci
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxd2YteDVjai1yZzU2
Kubernetes Arbitrary Command Injection
Ecosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmcDQteHg2bS03dmY2
Cryptographic Issues in ECK
Ecosystems: go
Packages: github.com/elastic/cloud-on-k8s
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ0Z2ctcG1xci00NjY5
Access Restriction Bypass in Docker
Ecosystems: go
Packages: github.com/docker/docker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3cnItcmhtbS12Y3Zm
NULL Pointer Dereference in Kubernetes CSI snapshot-controller
Ecosystems: go
Packages: github.com/kubernetes-csi/external-snapshotter/v3, github.com/kubernetes-csi/external-snapshotter/v2
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1ycHg3LTMzajIteHg5eM0hRA
Arbitrary file deletion in NeMo ASR webapp
Ecosystems: pypi
Packages: nemo_toolkit
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU3cTctcnhxcS03dmdw
On Windows, `git-sizer` might run a `git` executable within the repository being analyzed
Ecosystems: go
Packages: github.com/github/git-sizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Statistics
Advisories: 17,583
Packages: 8,150
Repositories: 4,898
Ecosystems: 12
Filter by Severity
Moderate 7,510 High 6,132 Critical 2,698 Low 961
Filter by Ecosystem
maven 5,501 pypi 3,537 npm 3,519 packagist 3,218 go 1,835 nuget 1,388 rubygems 812 cargo 772 swift 31 hex 29 actions 16 pub 8
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 moodle/moodle 249 Microsoft.ChakraCore 247 org.jenkins-ci.main:jenkins-core 189 magento/community-edition 181 org.apache.tomcat:tomcat 139 pimcore/pimcore 111 typo3/cms 94 microweber/microweber 91 django 80 apache-airflow 78 thorsten/phpmyfaq 70 typo3/cms-core 70 com.fasterxml.jackson.core:jackson-databind 69 ansible 63 github.com/usememos/memos 59 actionpack 57 dolibarr/dolibarr 56 org.apache.struts:struts2-core 55 phpmyadmin/phpmyadmin 53 librenms/librenms 52 concrete5/concrete5 52 apache-superset 48 shopware/platform 47 symfony/symfony 46 com.liferay.portal:release.portal.bom 45 org.keycloak:keycloak-core 45 baserproject/basercms 43 rdiffweb 42 nokogiri 42 plone 42 Pillow 41 showdoc/showdoc 40 github.com/mattermost/mattermost/server/v8 38 salt 38 github.com/mattermost/mattermost-server/v6 37 com.jfinal:jfinal 36 craftcms/cms 36 com.thoughtworks.xstream:xstream 36 Plone 36 shopware/core 35 net.mingsoft:ms-mcms 35 github.com/answerdev/answer 34 org.xwiki.platform:xwiki-platform-oldcore 34 matrix-synapse 34 org.apache.tomcat.embed:tomcat-embed-core 32 org.elasticsearch:elasticsearch 32 snipe/snipe-it 32 vyper 32 intelliants/subrion 31 drupal/core 30 k8s.io/kubernetes 30 opencv-python 30 mlflow 30 org.jenkins-ci.plugins:script-security 30 opencv-contrib-python 30 parse-server 29 github.com/argoproj/argo-cd 29 github.com/hashicorp/vault 28 froxlor/froxlor 28 github.com/grafana/grafana 28 silverstripe/framework 27 org.keycloak:keycloak-services 27 centreon/centreon 27 io.undertow:undertow-core 27 shopware/shopware 26 github.com/hashicorp/consul 26 openssl-src 26 electron 26 github.com/hashicorp/nomad 26 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 rubygems-update 25 mautic/core 24 getgrav/grav 24 gogs.io/gogs 24 magento/core 24 org.eclipse.jetty:jetty-server 23 remdex/livehelperchat 23 pocketmine/pocketmine-mp 23 prestashop/prestashop 23 puppet 23 org.springframework.security:spring-security-core 23 ckb 22 github.com/argoproj/argo-cd/v2 22 getkirby/cms 22 grumpydictator/firefly-iii 22 org.apache.nifi:nifi 22 rack 22 nilsteampassnet/teampass 22 Django 21 @openzeppelin/contracts-upgradeable 21 org.apache.openmeetings:openmeetings-parent 21 activerecord 21 github.com/cilium/cilium 20 org.cloudfoundry.identity:cloudfoundry-identity-server 20 github.com/rancher/rancher 20 @openzeppelin/contracts 20 org.springframework:spring-core 19 DotNetNuke.Core 19 github.com/docker/docker 19 github.com/ethereum/go-ethereum 19 drupal/drupal 19 com.vaadin:vaadin-bom 18 com.liferay.portal:release.dxp.bom 18 tribalsystems/zenario 18 org.bouncycastle:bcprov-jdk14 18 helm.sh/helm/v3 18 langchain 18 forkcms/forkcms 18 cockpit-hq/cockpit 17 org.apache.geode:geode-core 17 cakephp/cakephp 17 PaddlePaddle 17 Microsoft.AspNetCore.App.Runtime.win-x64 17 Microsoft.AspNetCore.App.Runtime.win-x86 17 golang.org/x/net 17 org.xwiki.platform:xwiki-platform-web-templates 17 francoisjacquet/rosariosis 17 cobbler 17 yetiforce/yetiforce-crm 16 org.bouncycastle:bcprov-jdk15 16 org.apache.activemq:activemq-client 16 sequelize 16 rusqlite 16 directus 16 Microsoft.AspNetCore.App.Runtime.win-arm 16 wasmtime 16 org.apache.dubbo:dubbo 16 org.apache.jspwiki:jspwiki-main 15 pillow 15 Microsoft.AspNetCore.App.Runtime.osx-x64 15 contao/core-bundle 15 openmage/magento-lts 15 Microsoft.AspNetCore.App.Runtime.linux-x64 15 paddlepaddle 15 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 15 Microsoft.AspNetCore.App.Runtime.linux-arm64 15 org.apache.struts.xwork:xwork-core 15 Microsoft.AspNetCore.App.Runtime.linux-arm 15 github.com/goharbor/harbor 15 cryptography 15 notebook 15 org.xwiki.platform:xwiki-platform-web 14 tinymce 14 typo3/cms-backend 14 code.gitea.io/gitea 14 gradio 14 Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 14 Microsoft.AspNetCore.App.Runtime.win-arm64 14 swagger-ui 14 modoboa 14 activesupport 14 publify_core 14 phpmailer/phpmailer 14 ghost 14 github.com/containerd/containerd 13 impresscms/impresscms 13 org.apache.inlong:manager-pojo 13 github.com/nats-io/nats-server/v2 13 nova 13 october/system 13 ckeditor4 13 org.apache.cxf:cxf 13 strapi 13 symfony/security 13 org.apache.hadoop:hadoop-main 13 github.com/traefik/traefik/v2 13 passenger 13 next 13 pyftpdlib 13 pyload-ng 13 ezsystems/ezpublish-kernel 13 org.apache.dolphinscheduler:dolphinscheduler 12 symfony/security-http 12 lavalite/cms 12 studio-42/elfinder 12 actionview 12 github.com/moby/moby 12 org.jenkins-ci.plugins:git 12 smarty/smarty 12 github.com/opencontainers/runc 12 vm2 12 vantage6 12 Microsoft.NETCore.App.Runtime.win-arm64 12 Microsoft.NETCore.App.Runtime.win-x64 12 Microsoft.NETCore.App.Runtime.win-x86 12 neutron 12 elefant/cms 12 com.vaadin:flow-server 12 undici 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 OctoPrint 12 phpmyfaq/phpmyfaq 12 keystone 12 org.apache.james:james-server 11 rails 11 org.apache.ranger:ranger 11
Filter by Repository
https://github.com/tensorflow/tensorflow 432 https://github.com/chakra-core/ChakraCore 214 https://github.com/moodle/moodle 210 https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/pimcore/pimcore 106 https://github.com/apache/tomcat 93 https://github.com/apache/airflow 89 https://github.com/microweber/microweber 85 https://github.com/django/django 72 https://github.com/FasterXML/jackson-databind 70 https://github.com/thorsten/phpmyfaq 69 https://github.com/usememos/memos 59 https://github.com/keycloak/keycloak 58 https://github.com/rails/rails 53 https://github.com/ansible/ansible 53 https://github.com/python-pillow/Pillow 51 https://github.com/apache/struts 46 https://github.com/librenms/librenms 45 https://github.com/shopware/platform 43 https://github.com/kubernetes/kubernetes 42 https://github.com/ikus060/rdiffweb 42 https://github.com/TYPO3/typo3 42 https://github.com/spring-projects/spring-framework 40 https://github.com/symfony/symfony 40 https://github.com/star7th/showdoc 38 https://github.com/x-stream/xstream 36 https://github.com/argoproj/argo-cd 36 https://github.com/plone/Products.CMFPlone 36 https://github.com/answerdev/answer 34 https://github.com/concretecms/concretecms 34 https://github.com/octobercms/october 33 https://github.com/matrix-org/synapse 32 https://github.com/vyperlang/vyper 32 https://github.com/apache/activemq 32 https://github.com/magento/magento2 31 https://github.com/sparklemotion/nokogiri 31 https://github.com/PaddlePaddle/Paddle 31 https://github.com/parse-community/parse-server 29 https://github.com/craftcms/cms 28 https://github.com/snipe/snipe-it 28 https://github.com/opencv/opencv 28 https://github.com/CVEProject/cvelist 28 https://github.com/Dolibarr/dolibarr 26 https://github.com/froxlor/froxlor 26 https://github.com/electron/electron 25 https://github.com/apache/inlong 25 https://github.com/saltstack/salt 25 https://github.com/mlflow/mlflow 25 https://github.com/go-gitea/gitea 24 https://github.com/shopware/shopware 24 https://github.com/TYPO3/TYPO3.CMS 24 https://github.com/phpmyadmin/phpmyadmin 24 https://github.com/mautic/mautic 24 https://github.com/getgrav/grav 23 https://github.com/dotnet/runtime 23 https://github.com/eclipse/jetty.project 23 https://github.com/pmmp/PocketMine-MP 23 https://github.com/livehelperchat/livehelperchat 23 https://github.com/github/advisory-database 23 https://github.com/grafana/grafana 22 https://github.com/baserproject/basercms 22 https://github.com/nervosnetwork/ckb 22 https://github.com/firefly-iii/firefly-iii 22 https://github.com/rancher/rancher 21 https://github.com/strapi/strapi 21 https://github.com/apache/nifi 21 https://github.com/cilium/cilium 20 https://github.com/OpenNMS/opennms 20 https://github.com/netty/netty 20 https://github.com/jenkinsci/script-security-plugin 20 https://github.com/PrestaShop/PrestaShop 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/OpenZeppelin/openzeppelin-contracts 20 https://github.com/gogs/gogs 20 https://github.com/helm/helm 19 https://github.com/nilsteampassnet/teampass 19 https://github.com/cloudfoundry/uaa 19 https://github.com/apache/cxf 19 https://github.com/hashicorp/consul 19 https://github.com/rubygems/rubygems 18 https://github.com/bcgit/bc-java 18 https://github.com/getkirby/kirby 18 https://github.com/vaadin/platform 17 https://github.com/rack/rack 17 https://github.com/bytecodealliance/wasmtime 17 https://github.com/liufee/cms 17 https://github.com/umbraco/Umbraco-CMS 16 https://github.com/sequelize/sequelize 16 https://github.com/etcd-io/etcd 16 https://github.com/opencast/opencast 16 https://github.com/forkcms/forkcms 16 https://github.com/rusqlite/rusqlite 16 https://github.com/hashicorp/vault 16 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/contao/contao 16 https://github.com/puppetlabs/puppet 15 https://github.com/apache/camel 15 https://github.com/directus/directus 15 https://github.com/goharbor/harbor 15 https://github.com/OpenMage/magento-lts 15 https://github.com/centreon/centreon 15 https://github.com/intelliants/subrion 15 https://github.com/geoserver/geoserver 15 https://github.com/ethereum/go-ethereum 15 https://github.com/langchain-ai/langchain 14 https://github.com/PHPMailer/PHPMailer 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/cobbler/cobbler 14 https://github.com/tinymce/tinymce 14 https://github.com/moby/moby 14 https://github.com/vantage6/vantage6 14 https://github.com/pyca/cryptography 14 https://github.com/denoland/deno 14 https://github.com/swagger-api/swagger-ui 13 https://github.com/ming-soft/MCMS 13 https://github.com/modoboa/modoboa 13 https://github.com/hashicorp/nomad 13 https://github.com/xuxueli/xxl-job 13 https://github.com/traefik/traefik 13 https://github.com/undertow-io/undertow 13 https://github.com/containerd/containerd 13 https://github.com/pyload/pyload 13 https://github.com/golang/go 13 https://github.com/gradio-app/gradio 13 https://github.com/publify/publify 13 https://github.com/twisted/twisted 12 https://github.com/ckeditor/ckeditor4 12 https://github.com/apache/kylin 12 https://github.com/TryGhost/Ghost 12 https://github.com/silverstripe/silverstripe-framework 12 https://github.com/backstage/backstage 12 https://github.com/patriksimek/vm2 12 https://github.com/dromara/hutool 12 https://github.com/nodejs/undici 12 https://github.com/apache/dolphinscheduler 12 https://github.com/centreon/centreon-archived 12 https://github.com/igniterealtime/Openfire 11 https://github.com/cloudflare/cfrpki 11 https://github.com/opencontainers/runc 11 https://github.com/drupal/core 11 https://github.com/jquery/jquery 11 https://github.com/puma/puma 11 https://github.com/Studio-42/elFinder 11 https://github.com/cakephp/cakephp 11 https://github.com/janeczku/calibre-web 11 https://github.com/urllib3/urllib3 11 https://github.com/vaadin/flow 11 https://github.com/openfga/openfga 11 https://github.com/NodeBB/NodeBB 11 https://github.com/dompdf/dompdf 11 https://github.com/quarkusio/quarkus 11 https://github.com/onionshare/onionshare 11 https://github.com/thorsten/phpMyFAQ 11 https://github.com/pimcore/admin-ui-classic-bundle 10 https://github.com/aio-libs/aiohttp 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/WWBN/AVideo 10 https://github.com/1Panel-dev/1Panel 10 https://github.com/containers/podman 10 https://github.com/jupyter/notebook 10 https://github.com/openstack/keystone 10 https://github.com/codeigniter4/CodeIgniter4 10 https://github.com/OPCFoundation/UA-.NETStandard 10 https://github.com/ezsystems/ezpublish-kernel 10 https://github.com/greenpau/caddy-security 10 https://github.com/keystonejs/keystone 10 https://github.com/dolibarr/dolibarr 10 https://github.com/dotnet/aspnetcore 10 https://github.com/zopefoundation/Zope 10 https://github.com/nats-io/nats-server 10 https://github.com/dpgaspar/Flask-AppBuilder 10 https://github.com/cosmos/cosmos-sdk 10 https://github.com/smarty-php/smarty 10 https://github.com/nextauthjs/next-auth 10 https://github.com/phusion/passenger 10 https://github.com/apache/lucene-solr 9 https://github.com/kevinpapst/kimai2 9 https://github.com/evershopcommerce/evershop 9 https://github.com/rails/rails-html-sanitizer 9 https://github.com/wagtail/wagtail 9 https://github.com/DSpace/DSpace 9 https://github.com/vercel/next.js 9 https://github.com/fatfreecrm/fat_free_crm 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/LavaLite/cms 9 https://github.com/cui2shark/cms 9 https://github.com/spring-projects/spring-security 9 https://github.com/alextselegidis/easyappointments 9 https://github.com/ethyca/fides 9 https://github.com/zitadel/zitadel 9 https://github.com/funadmin/funadmin 9 https://github.com/neorazorx/facturascripts 9 https://github.com/apache/superset 9 https://github.com/Pylons/waitress 9 https://github.com/crossbeam-rs/crossbeam 8 https://github.com/istio/istio 8 https://github.com/sebhildebrandt/systeminformation 8 https://github.com/jenkinsci/config-file-provider-plugin 8